Should I remove “Malware.AI.4188213037”?

The Malware.AI.4188213037 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.4188213037 virus can do?

Unconventionial language used in binary resources: Turkish
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Malware.AI.4188213037?


File Info:
name: 3587220E7DC8BA07EE3C.mlw
path: /opt/CAPEv2/storage/binaries/0023ba7b3939ba56ceb8fede0d789e949960e505a04a395213ada2f01a06581b
crc32: B1852CF2
md5: 3587220e7dc8ba07ee3ccf7cc303d416
sha1: e56980d1267b2b0a981b27f675630a4cdb6ecfaf
sha256: 0023ba7b3939ba56ceb8fede0d789e949960e505a04a395213ada2f01a06581b
sha512: eddb24c03b33bd8f075e7d59eb4fa604bae1d81311ef68bd06e76518b0b4a0d4b5dbf7567ccf61c6e600d3c721cde5a6ac6a41d84df2b5c916c894505dac65c1
ssdeep: 24576:/hvdt3pAw0188zNGadjkuUet8XaZQ68EI/ZTazpnr6:/RC1Bz6u+bEIRT8pnr
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F8957D25B7808837D6632B389C076BED6939BF103BA899A72BB53D0C5F756953434383
sha3_384: fb2716c04ec4c4361a1d2f31cceddb9ba03c8c56520d8feb931a5eda48aac0c15376ddf0809ac1bbd3a5472d3b7c97aa
ep_bytes: 558bec83c4e85333c08945ec8945e8b8
timestamp: 1992-06-19 22:22:17

Version Info:
CompanyName: Prime Corporation
FileDescription: Prime Antivirus
FileVersion: 3.0.0.0
InternalName: 1
LegalCopyright: Copyright © 2013 - 2015 Prime Corporation
LegalTrademarks: 
OriginalFilename: 
ProductName: Prime Antivirus Security
ProductVersion: 3.0.0.5360
Translation: 0x0409 0x04e4

Malware.AI.4188213037 also known as:

Lionic	Trojan.Win32.Agent.l7e7
MicroWorld-eScan	Gen:Variant.Bulz.26041
FireEye	Gen:Variant.Bulz.26041
ALYac	Gen:Variant.Bulz.26041
Malwarebytes	Malware.AI.4188213037
Zillya	Trojan.DllInject.Win32.16802
Sangfor	Trojan.Win32.Agent.Vvwr
Cybereason	malicious.e7dc8b
Symantec	Trojan.Gen.2
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of Win32/DllInject.KF potentially unsafe
TrendMicro-HouseCall	TROJ_GEN.R002C0PDU22
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Gen:Variant.Bulz.26041
Avast	Win32:Evo-gen [Susp]
Ad-Aware	Gen:Variant.Bulz.26041
Emsisoft	Gen:Variant.Bulz.26041 (B)
VIPRE	Gen:Variant.Bulz.26041
TrendMicro	TROJ_GEN.R002C0PDU22
McAfee-GW-Edition	BehavesLike.Win32.Dropper.th
SentinelOne	Static AI – Suspicious PE
Sophos	Mal/Basine-C
APEX	Malicious
GData	Gen:Variant.Bulz.26041
Avira	HEUR/AGEN.1246278
Antiy-AVL	Trojan/Generic.ASMalwS.330C
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 99)
McAfee	GenericRXFS-ED!3587220E7DC8
MAX	malware (ai score=80)
VBA32	BScope.Trojan.Tiggre
Cylance	Unsafe
Rising	Trojan.Generic@AI.82 (RDML:YIehY00d3+2A1maTGxzmeg)
Yandex	Trojan.GenAsa!k4KvGdFI62M
Ikarus	Trojan-PWS.Win32.Lmir
AVG	Win32:Evo-gen [Susp]
Panda	Trj/Genetic.gen
CrowdStrike	win/malicious_confidence_60% (W)

How to remove Malware.AI.4188213037?

Malware.AI.4188213037 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X